Chris@1296: # Redmine - project management software Chris@1296: # Copyright (C) 2006-2012 Jean-Philippe Lang Chris@1296: # Chris@1296: # This program is free software; you can redistribute it and/or Chris@1296: # modify it under the terms of the GNU General Public License Chris@1296: # as published by the Free Software Foundation; either version 2 Chris@1296: # of the License, or (at your option) any later version. Chris@1296: # Chris@1296: # This program is distributed in the hope that it will be useful, Chris@1296: # but WITHOUT ANY WARRANTY; without even the implied warranty of Chris@1296: # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the Chris@1296: # GNU General Public License for more details. Chris@1296: # Chris@1296: # You should have received a copy of the GNU General Public License Chris@1296: # along with this program; if not, write to the Free Software Chris@1296: # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. Chris@1296: Chris@1296: class RolesController < ApplicationController Chris@1296: layout 'admin' Chris@1296: Chris@1296: before_filter :require_admin, :except => [:index, :show] Chris@1296: before_filter :require_admin_or_api_request, :only => [:index, :show] Chris@1296: before_filter :find_role, :only => [:show, :edit, :update, :destroy] Chris@1296: accept_api_auth :index, :show Chris@1296: Chris@1296: def index Chris@1296: respond_to do |format| Chris@1296: format.html { Chris@1296: @role_pages, @roles = paginate :roles, :per_page => 25, :order => 'builtin, position' Chris@1296: render :action => "index", :layout => false if request.xhr? Chris@1296: } Chris@1296: format.api { Chris@1296: @roles = Role.givable.all Chris@1296: } Chris@1296: end Chris@1296: end Chris@1296: Chris@1296: def show Chris@1296: respond_to do |format| Chris@1296: format.api Chris@1296: end Chris@1296: end Chris@1296: Chris@1296: def new Chris@1296: # Prefills the form with 'Non member' role permissions by default Chris@1296: @role = Role.new(params[:role] || {:permissions => Role.non_member.permissions}) Chris@1296: if params[:copy].present? && @copy_from = Role.find_by_id(params[:copy]) Chris@1296: @role.copy_from(@copy_from) Chris@1296: end Chris@1296: @roles = Role.sorted.all Chris@1296: end Chris@1296: Chris@1296: def create Chris@1296: @role = Role.new(params[:role]) Chris@1296: if request.post? && @role.save Chris@1296: # workflow copy Chris@1296: if !params[:copy_workflow_from].blank? && (copy_from = Role.find_by_id(params[:copy_workflow_from])) Chris@1296: @role.workflow_rules.copy(copy_from) Chris@1296: end Chris@1296: flash[:notice] = l(:notice_successful_create) Chris@1296: redirect_to :action => 'index' Chris@1296: else Chris@1296: @roles = Role.sorted.all Chris@1296: render :action => 'new' Chris@1296: end Chris@1296: end Chris@1296: Chris@1296: def edit Chris@1296: end Chris@1296: Chris@1296: def update Chris@1296: if request.put? and @role.update_attributes(params[:role]) Chris@1296: flash[:notice] = l(:notice_successful_update) Chris@1296: redirect_to :action => 'index' Chris@1296: else Chris@1296: render :action => 'edit' Chris@1296: end Chris@1296: end Chris@1296: Chris@1296: def destroy Chris@1296: @role.destroy Chris@1296: redirect_to :action => 'index' Chris@1296: rescue Chris@1296: flash[:error] = l(:error_can_not_remove_role) Chris@1296: redirect_to :action => 'index' Chris@1296: end Chris@1296: Chris@1296: def permissions Chris@1296: @roles = Role.sorted.all Chris@1296: @permissions = Redmine::AccessControl.permissions.select { |p| !p.public? } Chris@1296: if request.post? Chris@1296: @roles.each do |role| Chris@1296: role.permissions = params[:permissions][role.id.to_s] Chris@1296: role.save Chris@1296: end Chris@1296: flash[:notice] = l(:notice_successful_update) Chris@1296: redirect_to :action => 'index' Chris@1296: end Chris@1296: end Chris@1296: Chris@1296: private Chris@1296: Chris@1296: def find_role Chris@1296: @role = Role.find(params[:id]) Chris@1296: rescue ActiveRecord::RecordNotFound Chris@1296: render_404 Chris@1296: end Chris@1296: end